$ rpki-client -vvf repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft File: BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft (raw, json) Hash identifier: Gnsqz6g7l1ixMMUKvWv/hIzsaki8/ahey7UEAdshvSU= Subject key identifier: 67:95:C6:14:0B:03:60:12:43:5B:39:91:67:45:8D:48:68:7D:8F:AB Authority key identifier: BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1 Certificate issuer: /CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1 Certificate serial: 45509719B7F19A63C056C16597FE75D87934D3C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft Manifest number: 01D3 Signing time: Fri 22 Nov 2024 14:01:27 +0000 Manifest this update: Fri 22 Nov 2024 13:56:27 +0000 Manifest next update: Tue 26 Nov 2024 00:18:27 +0000 Files and hashes: 1: 3130332e3130352e3139342e302f32342d3234203d3e20313336383738.roa (hash: S9T4Njr1S5t2cL0qzbEw2qPQzlgOAecG0HGE00Slwz4=) 2: 3130332e3130352e3139322e302f32342d3234203d3e20313336383738.roa (hash: 9Xcsdg9OW7hyvLJeIxms0eDUq77C9ZWWfMe+MJrxwGo=) 3: BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl (hash: 7/LgkwCl417KxjfeQyz+64vdJXu/aUY10SOVG+zpnN8=) 4: 3130332e3130352e3139332e302f32342d3234203d3e20313337333136.roa (hash: pu0ttZvTgMirb/HkuzJkh5PphveCvv9f8Ea2Bo6PoMQ=) 5: 3130332e3130352e3139352e302f32342d3234203d3e20313336383738.roa (hash: 2ALnzG8NpGh5V78r+rS+kxv6aYsU+DzNaB2tOqBsk2A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:50:97:19:b7:f1:9a:63:c0:56:c1:65:97:fe:75:d8:79:34:d3:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1 Validity Not Before: Nov 22 13:56:27 2024 GMT Not After : Nov 26 00:18:27 2024 GMT Subject: CN=6795C6140B036012435B399167458D48687D8FAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:81:92:53:e7:2e:8e:55:c6:cf:cc:e4:ef:f0: 3a:57:b7:05:9d:97:69:ac:c5:33:81:1f:9c:62:47: 0e:13:37:32:75:a8:90:08:82:83:a7:d5:67:08:d0: eb:22:d4:82:91:87:09:33:77:fd:a3:e6:c2:94:30: 18:6f:d3:34:7b:b6:58:cf:99:12:40:e9:7c:27:71: 7d:f1:05:88:70:1a:29:8d:95:f3:4a:bb:2f:68:09: a2:6f:20:cd:23:07:34:a1:88:fd:e5:05:2e:25:af: 9c:9a:2a:68:9d:39:f2:a8:6a:9f:88:87:d8:0a:65: fe:85:d5:db:28:e5:fb:ef:5c:b7:81:0f:21:18:96: 56:83:f1:1f:2a:2d:b9:b5:18:04:57:fc:1c:8f:e7: 89:a8:c5:92:29:0b:ef:3a:8f:13:fe:8b:c2:ab:a0: 6f:70:c5:21:e5:7e:63:9f:0f:7b:a1:4d:67:c4:7c: 5c:c6:17:a0:1b:e8:1b:6f:aa:f2:b7:cc:8b:bc:06: 94:2f:1c:6e:ec:0d:61:73:cd:a2:48:2f:51:6a:0b: 8e:14:9a:b3:87:6c:35:e3:2d:1a:c4:3f:6a:c9:34: e5:b9:89:e8:71:f7:62:4f:e3:ef:d0:c3:89:cf:c4: 25:6d:45:a0:be:11:4c:31:f2:98:35:f2:2b:99:48: 1f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:95:C6:14:0B:03:60:12:43:5B:39:91:67:45:8D:48:68:7D:8F:AB X509v3 Authority Key Identifier: keyid:BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:34:61:6f:1f:38:d8:8c:16:3b:05:b0:35:c1:54:b6:17:ea: 45:2a:30:ed:af:8e:d9:99:d9:7d:64:f1:c3:f8:c8:89:f8:c1: d7:3d:2c:a0:01:37:07:c3:91:a9:4f:75:5e:62:ff:fe:4e:0c: e7:cf:0a:a1:5e:ea:c9:20:c5:88:ae:fb:c1:99:d9:be:6b:19: cf:60:a1:6c:0b:ee:68:71:cf:19:3f:fc:52:6d:21:86:30:2c: 36:2c:5f:23:24:50:6a:34:e4:8d:f4:da:15:eb:84:8f:2a:eb: 93:c9:24:08:b6:b3:f8:b5:5e:a2:4f:d0:c1:8b:a3:0a:bf:db: 4f:cf:9d:38:c1:5e:be:03:a6:5d:ad:3c:ea:89:d7:eb:f7:22: 06:97:cb:aa:20:53:c4:19:fa:8a:32:40:63:ac:91:7a:2e:3f: c6:10:11:8a:bf:5d:70:6b:6f:55:d9:67:94:52:cf:3a:32:92: a0:a9:e0:e4:30:32:d5:fa:ae:e5:45:5c:9f:64:2f:b3:c0:7a: e0:68:ac:48:02:9d:d3:8e:0e:6b:0f:5b:9f:c4:f5:16:a2:93: 03:cb:6a:06:01:d2:fd:69:53:be:35:20:bc:6d:52:cf:ec:57: b0:42:46:7e:fd:03:bd:15:79:68:ea:90:af:b8:e3:23:6c:5f: f5:57:14:29 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURVCXGbfxmmPAVsFll/512Hk008cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBFMDE0 NzQyNDRCMTAeFw0yNDExMjIxMzU2MjdaFw0yNDExMjYwMDE4MjdaMDMxMTAvBgNV BAMTKDY3OTVDNjE0MEIwMzYwMTI0MzVCMzk5MTY3NDU4RDQ4Njg3RDhGQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKgZJT5y6OVcbPzOTv8DpXtwWd l2msxTOBH5xiRw4TNzJ1qJAIgoOn1WcI0Osi1IKRhwkzd/2j5sKUMBhv0zR7tljP mRJA6XwncX3xBYhwGimNlfNKuy9oCaJvIM0jBzShiP3lBS4lr5yaKmidOfKoap+I h9gKZf6F1dso5fvvXLeBDyEYllaD8R8qLbm1GARX/ByP54moxZIpC+86jxP+i8Kr oG9wxSHlfmOfD3uhTWfEfFzGF6Ab6BtvqvK3zIu8BpQvHG7sDWFzzaJIL1FqC44U mrOHbDXjLRrEP2rJNOW5iehx92JP4+/Qw4nPxCVtRaC+EUwx8pg18iuZSB9HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZ5XGFAsDYBJDWzmRZ0WNSGh9j6swHwYDVR0j BBgwFoAUvV1Gtb/nLyqhGIqQlrEOAUdCRLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTI0ZmE5YS1lNWYzLTQyNjUtOWUxZC04NGU0NTM1OTYxZDAvMC9CRDVENDZCNUJG RTcyRjJBQTExODhBOTA5NkIxMEUwMTQ3NDI0NEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBFMDE0NzQy NDRCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDkyNGZhOWEtZTVmMy00MjY1LTll MWQtODRlNDUzNTk2MWQwLzAvQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBF MDE0NzQyNDRCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK80YW8fONiMFjsFsDXBVLYX6kUqMO2vjtmZ 2X1k8cP4yIn4wdc9LKABNwfDkalPdV5i//5ODOfPCqFe6skgxYiu+8GZ2b5rGc9g oWwL7mhxzxk//FJtIYYwLDYsXyMkUGo05I302hXrhI8q65PJJAi2s/i1XqJP0MGL owq/20/PnTjBXr4Dpl2tPOqJ1+v3IgaXy6ogU8QZ+ooyQGOskXouP8YQEYq/XXBr b1XZZ5RSzzoykqCp4OQwMtX6ruVFXJ9kL7PAeuBorEgCndOODmsPW5/E9RaikwPL agYB0v1pU741ILxtUs/sV7BCRn79A70VeWjqkK+44yNsX/VXFCk= -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:38 2024 by rpki-client on console-ams.rpki-client.org